NETGEAR SRX5308-100NAS Switch User Manual

Open as PDF

of 460

Virtual Private Networking Using IPSec and L2TP Connections

237

ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308

Traffic Selection

Local IP From the drop-down list, select the address or addresses that are part of the

VPN tunnel on the VPN firewall:

• Any. Al

l computers and devices on the network. Note that you cannot select

Any for both the VPN firewall and the remote endpoint.

• Single. A

single IP address on the network. Enter the IP address in the Start

IP Address field.

• Range. A

range of IP addresses on the network. Enter the starting IP address

in the Start IP Address field and the ending IP address in the End IP Address

field.

• Subnet. A sub

net on the network. Enter the starting IP address in the Start IP

Address field. In addition:

- Su

bnet Mask. For IPv4 addresses on the IPv4 screen only, enter the

subnet mask.

- IPv

6 Prefix Length. For IPv6 addresses on the IPv6 screen only, enter the

prefix length.

Remote IP From the drop-down list, select the address or

addresses that are part of the

VPN tunnel on the remote endpoint. The selections are the same as for the

Local IP drop-down list.

Manual Policy Parameters

Note: These fields apply only when you select Manual Poli

cy as the policy type. When you specify the

settings for the fields in this section, a security association (SA) is created.

SPI-Incoming The Security Parameters Index (SPI) for the inbound policy. Enter a

hexa

decimal value between 3 and 8 characters (for example, 0x1234).

Encryption Algorithm From the drop-down list, select one of the

following five algorithms to negotiate

the security association (SA):

• 3DES. T

riple DES. This is the default algorithm.

• None. No encryption algorithm.

• DES. Dat

a Encryption Standard (DES).

• AES-128.

Advanced Encryption Standard (AES) with a 128-bit key size.

• AES-192. AES with a 192-bit key size.

• AES-256. AES with a

256-bit key size.

Key-In The encryption key for the inbound policy. The length of the key depends on the

selected encryption algorithm:

• 3DES.

Enter 24 characters.

• None. Key

does not apply.

• DES.

Enter 8 characters.

• AES-128.

Enter 16 characters.

• AES-192.

Enter 24 characters.

• AES-256.

Enter 32 characters.

Table 55. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)

Setting Description

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

NETGEAR SRX5308-100NAS Switch User Manual